Since iOS 10 can't trust Burp anymore, recommended alternatives?

lewlsaucengravy
Mar 31, 2017 03:57PM UTC

Since iOS 10 can no longer really "trust" the Burp Suite certificate, does anyone have any alternatives that free? While it shows up as trusted in iPhone, it still marks it as not secure when browsing to a site that uses the trusted burp certificate. I saw someone mention use a wildcard cert, but letsencrypt doesn't support it. Just trying to figure out an alternative to being able to trust Burp from iPhone using iOS 10+, preferably free. Thanks

Liam Tai-Hogan
Mar 31, 2017 03:59PM UTC
Support Center agent

Hi

Thanks for your message.

On recent versions of iOS you may need to go to “Enable Full Trust for the PortSwigger CA”. You can configure this setting at Settings > General > About > Certificate Trust Settings .